Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / apache/santuario-xml-security-java issues and pull requests

#281 - Bump advanced-security/maven-dependency-submission-action from 4.0.0 to 4.0.1

Pull Request - State: open - Opened by dependabot[bot] 12 months ago
Labels: dependencies, github_actions

#280 - Bump com.google.errorprone:error_prone_core from 2.24.1 to 2.25.0

Pull Request - State: open - Opened by dependabot[bot] 12 months ago
Labels: dependencies, java

#279 - Bump actions/upload-artifact from 4.3.0 to 4.3.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#278 - Bump commons-codec:commons-codec from 1.16.0 to 1.16.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#277 - Bump org.slf4j:slf4j-jdk14 from 2.0.11 to 2.0.12

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, java

#276 - Bump junit.version from 5.10.1 to 5.10.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#275 - Bump advanced-security/maven-dependency-submission-action from 3.0.3 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#274 - Bump actions/upload-artifact from 4.2.0 to 4.3.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#273 - Bump actions/upload-artifact from 4.1.0 to 4.2.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#272 - Bump actions/cache from 3.3.3 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#271 - Implementation of the HKDF derivation function

Pull Request - State: open - Opened by jrihtarsic about 1 year ago - 4 comments

#270 - Bump org.cyclonedx:cyclonedx-maven-plugin from 2.7.10 to 2.7.11

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#269 - Bump com.fasterxml.woodstox:woodstox-core from 6.5.1 to 6.6.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#268 - Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.3.0 to 3.4.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#267 - Bump com.google.errorprone:error_prone_core from 2.23.0 to 2.24.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#266 - Bump org.slf4j:slf4j-jdk14 from 2.0.9 to 2.0.11

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#265 - Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.2.3 to 3.2.5

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#264 - Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.3 to 3.2.5

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#263 - Bump actions/cache from 3.3.2 to 3.3.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#262 - Bump actions/upload-artifact from 4.0.0 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#261 - Bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#260 - Bump org.apache.maven.plugins:maven-source-plugin from 3.2.1 to 3.3.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#259 - Bump org.apache.felix:maven-bundle-plugin from 5.1.8 to 5.1.9

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#258 - Bump org.apache.maven.plugins:maven-release-plugin from 3.0.0 to 3.0.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#257 - Bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, java

#256 - Bump actions/upload-artifact from 3.1.3 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#255 - Bump org.apache.maven.plugins:maven-surefire-plugin from 3.1.2 to 3.2.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#254 - Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.1.0 to 3.2.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#253 - Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.1.0 to 3.2.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 2 comments
Labels: dependencies, java

#252 - Bump org.apache.maven.plugins:maven-surefire-plugin from 3.1.2 to 3.2.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 3 comments
Labels: dependencies, java

#251 - Bump commons-codec:commons-codec from 1.15 to 1.16.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#250 - Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.5.0 to 3.6.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, java

#249 - Bump actions/setup-java from 3.13.0 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies, github_actions

#248 - workaround source RB issue

Pull Request - State: closed - Opened by hboutemy about 1 year ago

#247 - Updating Parent Pom

Pull Request - State: closed - Opened by coheigea about 1 year ago

#246 - Bump actions/dependency-review-action from 3.1.0 to 3.1.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 2 comments
Labels: dependencies, github_actions

#245 - Bump org.bouncycastle:bcprov-jdk18on from 1.76 to 1.77

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, java

#244 - Bump actions/dependency-review-action from 3.1.0 to 3.1.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#243 - Bump junit.version from 5.10.0 to 5.10.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, java

#242 - Nulling out protected branches

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#242 - Nulling out protected branches

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#241 - Removing protected branches

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#241 - Removing protected branches

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#240 - Remove call to Signature.getProvider() in debug log

Pull Request - State: closed - Opened by narras-oss over 1 year ago - 8 comments

#239 - Bump ossf/scorecard-action from 2.3.0 to 2.3.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, github_actions

#239 - Bump ossf/scorecard-action from 2.3.0 to 2.3.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, github_actions

#238 - Bump org.cyclonedx:cyclonedx-maven-plugin from 2.7.9 to 2.7.10

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, java

#238 - Bump org.cyclonedx:cyclonedx-maven-plugin from 2.7.9 to 2.7.10

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, java

#237 - Make all tests pass with Java 21

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#237 - Make all tests pass with Java 21

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#236 - Downgrading Jetty for test

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#236 - Downgrading Jetty for test

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#235 - Downgrading some dependencies with known vulns to see if caught by de…

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#235 - Downgrading some dependencies with known vulns to see if caught by de…

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#234 - SANTUARIO-511: Implementation of the Diffie-Hellman-ES key exchange for EC and XEC keys

Pull Request - State: closed - Opened by jrihtarsic over 1 year ago - 12 comments

#233 - Bump actions/checkout from 4.1.0 to 4.1.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, github_actions

#232 - Bump advanced-security/maven-dependency-submission-action from 3.0.2 to 3.0.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, github_actions

#231 - Downgrading some dependencies with known vulns to see if caught by de…

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#230 - Downgrading some dependencies with known vulns to see if caught by de…

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#230 - Downgrading some dependencies with known vulns to see if caught by de…

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#229 - Downgrading jetty

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#228 - Bump com.google.errorprone:error_prone_core from 2.22.0 to 2.23.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, java

#228 - Bump com.google.errorprone:error_prone_core from 2.22.0 to 2.23.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, java

#227 - Downgrading jetty

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#226 - Downgrading jetty - TEST

Pull Request - State: closed - Opened by coheigea over 1 year ago - 1 comment

#225 - [StepSecurity] ci: Harden GitHub Actions

Pull Request - State: closed - Opened by step-security-bot over 1 year ago

#225 - [StepSecurity] ci: Harden GitHub Actions

Pull Request - State: closed - Opened by step-security-bot over 1 year ago

#224 - [StepSecurity] ci: Harden GitHub Actions

Pull Request - State: closed - Opened by step-security-bot over 1 year ago

#224 - [StepSecurity] ci: Harden GitHub Actions

Pull Request - State: closed - Opened by step-security-bot over 1 year ago

#223 - Implementation of the ECDH-ES Key AgreementMethod

Pull Request - State: closed - Opened by jrihtarsic over 1 year ago - 2 comments

#222 - Bump org.jacoco:jacoco-maven-plugin from 0.8.10 to 0.8.11

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 3 comments
Labels: dependencies, java

#222 - Bump org.jacoco:jacoco-maven-plugin from 0.8.10 to 0.8.11

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 3 comments
Labels: dependencies, java

#221 - Bump com.sun.xml.messaging.saaj:saaj-impl from 1.5.3 to 3.0.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, java

#221 - Bump com.sun.xml.messaging.saaj:saaj-impl from 1.5.3 to 3.0.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, java

#220 - Bump ossf/scorecard-action from 2.2.0 to 2.3.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#219 - Update protectAgainstWrappingAttackNodeWrapping for proxy elements

Pull Request - State: closed - Opened by jrihtarsic over 1 year ago

#219 - Update protectAgainstWrappingAttackNodeWrapping for proxy elements

Pull Request - State: closed - Opened by jrihtarsic over 1 year ago

#217 - Use SPDX identifier for license

Pull Request - State: closed - Opened by coheigea over 1 year ago

#216 - Removing duplicate Jetty version

Pull Request - State: closed - Opened by coheigea over 1 year ago

#216 - Removing duplicate Jetty version

Pull Request - State: closed - Opened by coheigea over 1 year ago

#215 - Update Jetty to 11.0.16

Pull Request - State: closed - Opened by coheigea over 1 year ago

#215 - Update Jetty to 11.0.16

Pull Request - State: closed - Opened by coheigea over 1 year ago

#214 - Bump actions/setup-java from 3.12.0 to 3.13.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#213 - Bump actions/checkout from 4.0.0 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#213 - Bump actions/checkout from 4.0.0 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#212 - Bump com.google.errorprone:error_prone_core from 2.21.1 to 2.22.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, java

#212 - Bump com.google.errorprone:error_prone_core from 2.21.1 to 2.22.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, java

#211 - Bump org.gaul:modernizer-maven-plugin from 2.6.0 to 2.7.0

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago - 3 comments
Labels: dependencies, java

#211 - Bump org.gaul:modernizer-maven-plugin from 2.6.0 to 2.7.0

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago - 3 comments
Labels: dependencies, java

#210 - Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.0 to 4.0.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, java

#210 - Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.0 to 4.0.1

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, java

#209 - Bump actions/cache from 3.3.1 to 3.3.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#209 - Bump actions/cache from 3.3.1 to 3.3.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#208 - Bump actions/checkout from 3.6.0 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#208 - Bump actions/checkout from 3.6.0 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#207 - Bump actions/upload-artifact from 3.1.2 to 3.1.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#207 - Bump actions/upload-artifact from 3.1.2 to 3.1.3

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions